|
311
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
eth: bnxt: always recalculate features after XDP clearing, fix null-deref
Recalculate features when XDP is detached.
Before:
#…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-21682
|
2025-02-5 00:25 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20639
|
2025-02-5 00:24 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20641
|
2025-02-5 00:22 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314
|
4.3 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional exec…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2025-20640
|
2025-02-5 00:22 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20642
|
2025-02-5 00:20 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316
|
3.9 |
LOW
Physics
|
google
|
android
|
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, if a malicious actor ha…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2025-20643
|
2025-02-5 00:19 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317
|
- |
|
-
|
-
|
Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code Inclusion. This issue affects Post/Page Copying Tool: from n/a through 2.0…
New
|
CWE-94
Code Injection
|
CVE-2025-24677
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318
|
- |
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE) allows Privilege Escalation. This issue affects Admin and Site Enhancements (ASE): from n/a through 7.6.2.1.
New
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2025-24648
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP24 WP24 Domain Check allows Reflected XSS. This issue affects WP24 Domain Check: from n/a throu…
New
|
CWE-79
Cross-site Scripting
|
CVE-2025-24602
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
320
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tribulant Newsletters allows Reflected XSS. This issue affects Newsletters: from n/a through 4.9.…
New
|
CWE-79
Cross-site Scripting
|
CVE-2025-24599
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
